Cyber Hawk

Cyber Security

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

April 07, 2026

Iran-affiliated cyber actors are targeting internet-facing operational technology (OT) devices across critical infrastructures in the U.S., including programmable logic controllers (PLCs), cybersecur…

Cyber Security

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

April 07, 2026

New academic research has identified multiple RowHammer attacks against high-performance graphics processing units (GPUs) that could be exploited to escalate privileges and, in some cases, even take …

Cyber Security

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

April 07, 2026

A China-based threat actor known for deploying Medusa ransomware has been linked to the weaponization of a combination of zero-day and N-day vulnerabilities to orchestrate "high-velocity" a…

Cyber Security

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

April 06, 2026

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) platform, according to new findings from VulnCheck. The vulnerability in question…

Cyber Security

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

April 06, 2026

An Iran-nexus threat actor is suspected to be behind a password-spraying campaign targeting Microsoft 365 environments in Israel and the U.A.E. amid ongoing conflict in the Middle East. The activity,…

Cyber Security

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

April 06, 2026

The most active piece of enterprise infrastructure in the company is the developer workstation. That laptop is where credentials are created, tested, cached, copied, and reused across services, bots,…

Cyber Security

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

April 06, 2026

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BYOVD) technique to silence security tools running on compromised …

Bitcoin Mining

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Popular Feeds

Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

Featured News

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

Random Posts

Popular Posts

Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

Bitcoin Mining

Share

Popular Feeds

Featured News

Random Posts

Popular Posts